now requests are totally unsecure, we should add some kind of authentication and probably a ssl layer.
An option is to use a token, this could be like:
- Restrict use of jnlp to certain hours, should be accessible just from the start to the end time in the reservation.
- Identify the user with the corresponding user who has downloaded current application, probably adding some kind of token on the jnlp
- With this token ask the server if is able to start vnc with the current device.
- With this token also ask when we should stop viewing the device. Maybe ask the user that is going to finish, maybe some thread which ask to the server if is still allowed current execution.
- Restrict all the commands using this token: battery, restart, upload, etc.
now requests are totally unsecure, we should add some kind of authentication and probably a ssl layer.
An option is to use a token, this could be like: